Specifies whether to enable admin consent scopes or default scopes for obtaining access and refresh tokens during authentication.

Possible Values

Data Type

string

Default Value

"NoAdminConsent"

Remarks

Scopes are set to define what kind of access the authenticating user will have; for example, read, read and write, restricted access to sensitive information. System administrators can use scopes to selectively enable access by functionality or security clearance.

When InitiateOAuth is set to GETANDREFRESH, you must use this property if you want to change which scopes are requested. When InitiateOAuth is set to either REFRESH or OFF, you can use either this property or the Scope input to change which scopes are requested.

This property controls the type of scopes used for authentication.

• AdminConsent: Enables admin consent scopes, which provide elevated permissions and require administrator approval. Use this setting when your application needs elevated permissions for advanced operations.
• NoAdminConsent: Uses default scopes that do not require admin consent. This setting is suitable for standard use cases with minimal permissions.

Alternatively, you can specify a custom space-delimited list of scopes to define specific permissions required by your application. This allows greater flexibility in tailoring the authentication process to your needs.